package com.tianjin.weight.filter;

import com.alibaba.fastjson.JSON;
import com.tianjin.weight.utils.JwtTokenUtil;
import com.tianjin.weight.utils.ResultInfo;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.stereotype.Component;

import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.io.OutputStreamWriter;
import java.io.PrintWriter;
import java.io.UnsupportedEncodingException;


/**
 * token验证拦截
 * @author Wu.H 2021-04-09
 */
@Component
@WebFilter(urlPatterns = { "/app/login/*","/api/login/*","/api/manufactor/*","/app/channe/*"}, filterName = "tokenAuthorFilter")
public class TokenAuthorFilter implements Filter {

    private static Logger logger = LoggerFactory.getLogger(TokenAuthorFilter.class);

    @Override
    public void destroy() {

    }

    @Override
    public void doFilter(ServletRequest request, ServletResponse response,
                         FilterChain chain) throws IOException, ServletException {
        HttpServletRequest req = (HttpServletRequest) request;
        HttpServletResponse rep = (HttpServletResponse) response;

        //设置允许跨域的配置
        // 这里填写你允许进行跨域的主机ip（正式上线时可以动态配置具体允许的域名和IP）
        rep.setHeader("Access-Control-Allow-Origin", "*");
        // 允许的访问方法
        rep.setHeader("Access-Control-Allow-Methods","POST, GET, PUT, OPTIONS, DELETE, PATCH");
        // Access-Control-Max-Age 用于 CORS 相关配置的缓存
        rep.setHeader("Access-Control-Max-Age", "3600");
        rep.setHeader("Access-Control-Allow-Headers","token,Origin, X-Requested-With, Content-Type, Accept");


        response.setCharacterEncoding("UTF-8");
        response.setContentType("application/json; charset=utf-8");
        String token = req.getHeader("token");//header方式
        ResultInfo resultInfo = new ResultInfo();
        boolean isFilter = false;


        //APP注册和登录接口过滤token验证 add by Wu.H 2021-04-09
        String  requesPath = req.getRequestURI();
        if(requesPath.equals("/app/login/register") || requesPath.equals("/app/login/applogin")
                || requesPath.equals("/app/login/vaildCode") || requesPath.equals("/app/login/phone")
                || requesPath.contains("/api/")  || requesPath.equals("/app/channe/list")
        ) {
            resultInfo.setCode("SUCCESS");
            resultInfo.setMsg("用户授权认证通过!");
            isFilter = true;
        }else {
            String method = ((HttpServletRequest) request).getMethod();
            if (method.equals("OPTIONS")) {
                rep.setStatus(HttpServletResponse.SC_OK);
            }else{
                if (null == token || token.isEmpty()) {
                    resultInfo.setCode("UN_AUTHORIZED");
                    resultInfo.setMsg("用户授权认证没有通过!客户端请求参数中无token信息");
                } else {
                    if (JwtTokenUtil.validateToken(token)) {
                        resultInfo.setCode("SUCCESS");
                        resultInfo.setMsg("用户授权认证通过!");
                        isFilter = true;
                    } else {
                        resultInfo.setCode("UN_AUTHORIZED");
                        resultInfo.setMsg("用户授权认证没有通过!客户端请求参数token信息无效");
                    }
                }
                if (resultInfo.getCode().equals("UN_AUTHORIZED")) {// 验证失败
                    PrintWriter writer = null;
                    OutputStreamWriter osw = null;
                    try {
                        osw = new OutputStreamWriter(response.getOutputStream(),
                                "UTF-8");
                        writer = new PrintWriter(osw, true);
                        String jsonStr = JSON.toJSONString(resultInfo);
                        writer.write(jsonStr);
                        writer.flush();
                        writer.close();
                        osw.close();
                    } catch (UnsupportedEncodingException e) {
                        logger.error("过滤器返回信息失败:" + e.getMessage(), e);
                    } catch (IOException e) {
                        logger.error("过滤器返回信息失败:" + e.getMessage(), e);
                    } finally {
                        if (null != writer) {
                            writer.close();
                        }
                        if (null != osw) {
                            osw.close();
                        }
                    }
                    return;
                }
            }
        }

        if (isFilter) {
            logger.info("token filter过滤ok!");
            chain.doFilter(request, response);
        }

    }

    @Override
    public void init(FilterConfig arg0) throws ServletException {

    }

}
